OverlayFS inode Security Checks 'inode.c' Local Security Bypass Vulnerability
BID:51529
Info
OverlayFS inode Security Checks 'inode.c' Local Security Bypass Vulnerability
| Bugtraq ID: | 51529 |
| Class: | Design Error |
| CVE: |
CVE-2012-0055 |
| Remote: | No |
| Local: | Yes |
| Published: | Jan 17 2012 12:00AM |
| Updated: | Mar 06 2012 09:20PM |
| Credit: | Gary Poster |
| Vulnerable: |
Ubuntu Ubuntu Linux 11.10 i386 Ubuntu Ubuntu Linux 11.10 amd64 Ubuntu Ubuntu Linux 10.04 sparc Ubuntu Ubuntu Linux 10.04 powerpc Ubuntu Ubuntu Linux 10.04 i386 Ubuntu Ubuntu Linux 10.04 ARM Ubuntu Ubuntu Linux 10.04 amd64 OverlayFS OverlayFS 0 |
| Not Vulnerable: | |
Discussion
OverlayFS inode Security Checks 'inode.c' Local Security Bypass Vulnerability
OverlayFS is prone to a local security-bypass vulnerability.
Attackers can exploit this issue to bypass security restrictions and perform unauthorized actions.
OverlayFS is prone to a local security-bypass vulnerability.
Attackers can exploit this issue to bypass security restrictions and perform unauthorized actions.
Exploit / POC
OverlayFS inode Security Checks 'inode.c' Local Security Bypass Vulnerability
The following exploit is available:
The following exploit is available:
Solution / Fix
OverlayFS inode Security Checks 'inode.c' Local Security Bypass Vulnerability
Solution:
Updates are available. Please see the references for more information.
Solution:
Updates are available. Please see the references for more information.
References
OverlayFS inode Security Checks 'inode.c' Local Security Bypass Vulnerability
References:
References: